$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa File: 1c9d5620-aeb3-442d-ac52-b345961602c4.roa (raw, json) Hash identifier: RdmG7pFXRnY0IKi88nGIu3iIuZn1E+vuLXwDasedPr0= Subject key identifier: D3:E0:07:57:4C:BD:54:B4:E1:1D:62:9E:5A:FC:A2:B7:6B:2B:BE:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1020AFB201CC572351248BC39CE8654BC2C0213A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 56.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Sep 2023 12:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:20:af:b2:01:cc:57:23:51:24:8b:c3:9c:e8:65:4b:c2:c0:21:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=968d88da56c9bcb920e6bf882c73ff8f5ff59c8f7e93166abb0fcc7f7d825d35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6d:ab:e1:40:20:d1:d5:d0:42:ce:43:57:08: 65:f3:85:a1:43:3e:91:9e:06:4f:1b:b2:c8:40:e3: 7d:6b:2e:96:e7:61:64:28:5c:32:fa:c6:d5:6b:4a: c2:c4:90:33:f6:06:ac:69:a9:33:01:7a:e7:34:0e: f9:c2:ea:16:a3:49:64:f3:f8:65:7e:d1:52:6f:1c: 6c:1b:ab:97:98:6e:13:dd:d6:6a:43:f6:76:3e:f1: 7c:c3:d7:af:b4:20:d8:64:b4:2c:08:03:c9:fa:ba: 1e:3c:91:89:51:b1:bc:f9:3c:0b:11:9d:b5:34:b2: d9:f5:62:dd:54:7b:25:7c:ed:79:5e:96:02:a1:bd: e5:71:77:77:c2:28:82:e1:69:48:cb:cb:42:45:e4: 43:3e:62:75:bb:04:5f:2c:e2:46:9a:02:2f:4e:14: 60:14:e8:d4:d0:b1:54:04:1e:e1:2f:28:e8:87:fe: 11:44:65:d9:ac:ae:6b:a4:7e:6b:67:47:bd:49:06: 90:e4:6d:d0:de:4b:03:7e:28:22:3f:8b:cc:21:92: 4d:f2:d2:3e:55:75:45:64:6d:12:51:c0:03:b1:b4: 1f:ec:21:c6:c6:32:ed:c1:1a:ec:5c:bf:65:7a:55: 72:3f:26:34:7c:33:43:8b:55:20:a9:e4:48:e5:31: 6f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E0:07:57:4C:BD:54:B4:E1:1D:62:9E:5A:FC:A2:B7:6B:2B:BE:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:d1:f4:4a:02:ef:9e:0a:2b:16:dd:f7:f7:c6:6a:09:84:39: 16:4c:c5:e7:2e:f2:c3:c8:6a:e3:a0:0c:32:7c:7e:50:ed:5f: b9:75:d0:bd:5a:ea:ce:0d:e7:e3:a2:b3:b8:e7:d8:62:41:e2: 84:54:ef:d2:59:55:46:f2:a2:a9:11:cb:22:fe:17:c3:64:36: 24:78:08:1b:81:27:ef:ab:a2:37:b1:99:f8:fd:01:6c:ab:26: 15:c2:b5:60:55:88:3d:45:d1:fb:d4:67:f2:27:d1:ab:b4:2a: bb:55:18:09:bb:54:04:70:b8:51:c8:c2:c9:a1:dc:39:b5:bd: 1b:a4:7a:2e:9d:65:ae:8e:0f:42:e5:44:20:66:b3:a8:74:ce: 36:55:b1:b9:ac:64:44:f3:11:a0:b4:1f:a5:0a:0a:92:9f:bd: ff:6b:69:a3:fd:f4:fa:3b:26:de:d3:1b:a8:31:b3:0a:86:f2: 56:a9:2e:90:d2:d6:f2:f7:bd:08:06:97:ad:41:a0:57:07:6f: 05:b9:df:fa:fd:24:5b:9d:4e:51:ac:e3:04:0a:f5:22:ac:e3: b4:a0:f9:1e:f5:6a:d0:84:4c:24:28:31:02:ba:8c:54:b1:af: fb:9c:f7:8f:b1:94:74:47:e6:31:85:c4:71:89:0c:79:fb:5b: b9:db:a1:50 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUECCvsgHMVyNRJIvDnOhlS8LAITowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjhkODhkYTU2YzliY2I5MjBlNmJmODgyYzczZmY4ZjVm ZjU5YzhmN2U5MzE2NmFiYjBmY2M3ZjdkODI1ZDM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJbavhQCDR1dBCzkNXCGXzhaFDPpGeBk8bsshA431rLpbn YWQoXDL6xtVrSsLEkDP2BqxpqTMBeuc0DvnC6hajSWTz+GV+0VJvHGwbq5eYbhPd 1mpD9nY+8XzD16+0INhktCwIA8n6uh48kYlRsbz5PAsRnbU0stn1Yt1UeyV87Xle lgKhveVxd3fCKILhaUjLy0JF5EM+YnW7BF8s4kaaAi9OFGAU6NTQsVQEHuEvKOiH /hFEZdmsrmukfmtnR71JBpDkbdDeSwN+KCI/i8whkk3y0j5VdUVkbRJRwAOxtB/s IcbGMu3BGuxcv2V6VXI/JjR8M0OLVSCp5EjlMW/rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0+AHV0y9VLThHWKeWvyit2srvlYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOWQ1NjIwLWFlYjMtNDQyZC1hYzUyLWIzNDU5NjE2MDJjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ODANBgkqhkiG9w0BAQsFAAOCAQEAsNH0SgLvngorFt3398ZqCYQ5FkzF 5y7yw8hq46AMMnx+UO1fuXXQvVrqzg3n46KzuOfYYkHihFTv0llVRvKiqRHLIv4X w2Q2JHgIG4En76uiN7GZ+P0BbKsmFcK1YFWIPUXR+9Rn8ifRq7Qqu1UYCbtUBHC4 UcjCyaHcObW9G6R6Lp1lro4PQuVEIGazqHTONlWxuaxkRPMRoLQfpQoKkp+9/2tp o/30+jsm3tMbqDGzCobyVqkukNLW8ve9CAaXrUGgVwdvBbnf+v0kW51OUazjBAr1 IqzjtKD5HvVq0IRMJCgxArqMVLGv+5z3j7GUdEfmMYXEcYkMeftbuduhUA== -----END CERTIFICATE-----Generated at Fri Sep 22 00:30:05 2023 by rpki-client on console-fra.rpki-client.org